Their site is working for me.
Forum just came back for me now hmmm Got 10 VestaCP servers exploited - Page 44 - Vesta Control Panel - Forum fresh install and still infected ?
Misinformation i bet. He was not infected and right after update he got it? People that were infected, cleaned the Trojan and updated, are not complaining about a new infection.
well not good news from Patrick Williams a well known security person from Rack911. Well good in that VestaCP devs now have a chance to patch these up. VestaCP zero-day exploit | Web Hosting Talk VestaCP hit with zeroday exploit [Patch Released, Unclear If Resolved] - Page 4
In VestaCP forum, many people were saying something related to roundcube, that it seemed the exploit was from there. VestaCP installs Roundcube. Coincidence or not, yesterday Roudcube released a security update for an injection vulnerability:
From that news and Patrick's i think there's multiple root level exploits in VestaCP so a multi vector attack is probably most likely - all leading to compromise. Will be interesting to see what is revealed vulnerability wise after VestaCP patches everything.
Patrick's VestaCP security vulnerability report is being sent to VesatCP folks today VestaCP hit with zeroday exploit [Patch Released, Unclear If Resolved] - Page 5 a bit of a clue as to where some of the vulnerabilities are
Yup VestaCP hit with zeroday exploit [Patch Released, Unclear If Resolved] - Page 5 edit: just re-read that last line so there's more to come !
@eva2000 are you registered in lowendtalk? Im not and they ask for review. I posted what patrick said in Vesta forum and i received one PM from one of their Dev's with: Can you pass this message to Patrick?